Leap beyond boundaries and harness the infinite expanse of wisdom enshrined within the CISSP dumps. Ingeniously designed to resonate with the ever-evolving syllabus, the CISSP dumps are a treasure trove of practice questions, setting you on the path to success. Whether it\’s the lucid explanations in PDFs that engage or the vivacious realm of the VCE format that captivates, the CISSP dumps are the lighthouse. An avant-garde study guide, harmoniously fused with the CISSP dumps, deciphers the cryptic, ensuring you\’re always enlightened. Standing tall in our commitment to quality, we resoundingly echo our 100% Pass Guarantee.
[Newest Collection] Unlock success with the free CISSP PDF QAs, complete with a 100% pass guarantee
Question 1:
Which of the following threats would be MOST likely mitigated by monitoring assets containing open source libraries for vulnerabilities?
A. Distributed denial-of-service (DDoS) attack
B. Zero-day attack
C. Phishing attempt
D. Advanced persistent threat (APT) attempt
Correct Answer: A
Question 2:
A security professional recommends that a company integrate threat modeling into its Agile development processes. Which of the following BEST describes the benefits of this approach?
A. Reduce application development costs.
B. Potential threats are addressed later in the Software Development Life Cycle (SDLC).
C. Improve user acceptance of implemented security controls.
D. Potential threats are addressed earlier in the Software Development Life Cycle (SDLC).
Correct Answer: D
Question 3:
Which of the following is the BEST way to protect privileged accounts?
A. Quarterly user access rights audits
B. Role-based access control (RBAC)
C. Written supervisory approval
D. Multi-factor authentication (MFA)
Correct Answer: D
Question 4:
When building a data center, site location and construction factors that increase the level of vulnerability to physical threats include
A. hardened building construction with consideration of seismic factors.
B. adequate distance from and lack of access to adjacent buildings.
C. curved roads approaching the data center.
D. proximity to high crime areas of the city.
Correct Answer: D
Question 5:
A user has infected a computer with malware by connecting a Universal Serial Bus (USB) storage device.
Which of the following is MOST effective to mitigate future infections?
A. Develop a written organizational policy prohibiting unauthorized USB devices
B. Train users on the dangers of transferring data in USB devices
C. Implement centralized technical control of USB port connections
D. Encrypt removable USB devices containing data at rest
Correct Answer: C
Question 6:
Which of the following defines the key exchange for Internet Protocol Security (IPSec)?
A. Secure Sockets Layer (SSL) key exchange
B. Internet Key Exchange (IKE)
C. Security Key Exchange (SKE)
D. Internet Control Message Protocol (ICMP)
Correct Answer: B
Question 7:
Which of the following BEST describes botnets?
A. Computer systems on the Internet that are set up to trap people who attempt to penetrate other computer systems
B. Set of related programs that protects the resources of a private network from other networks
C. Small network inserted in a neutral zone between an organization\’s private network and the outside public network
D. Groups of computers that are used to launch destructive attacks
Correct Answer: D
Question 8:
Which of the following is the BEST statement for a professional to include as port of businees continuity (BC) procedure?
A. A full data backup must be done upon management request.
B. An incremental data backup must be done upon management request.
C. A full data backup must be done based on the needs of the business.
D. In incremental data backup must be done after each system change.
Correct Answer: D
Question 9:
Which of the following is the PRIMARY reason for selecting the appropriate level of detail for audit record generation?
A. Lower costs throughout the System Development Life Cycle (SDLC)
B. Facilitate a root cause analysis (RCA)
C. Enable generation of corrective action reports
D. Avoid lengthy audit reports
Correct Answer: B
Question 10:
Which of the following is a document that identifies each item seized in an investigation, including date and time seized, full name and signature or initials of the person who seized the item, and a detailed description of the item?
A. Property book
B. Chain of custody form
C. Search warrant return
D. Evidence tag
Correct Answer: B
Question 11:
Which mechanism provides the BEST protection against buffer overflow attacks in memory?
A. Address Space Layout Randomization (ASLR)
B. Memory management unit
C. Stack and heap allocation
D. Dynamic random access memory (DRAM)
Correct Answer: A
Reference: https://www.wallarm.com/what/buffer-overflow-attack-preventing-and-mitigation-methods-part-2#:~:text=Unfortunately%2C%20nothing%20is%20perfect%2C%20but,are%20put%20away%20in%20memory
Question 12:
A security professional can BEST mitigate the risk of using a Commercial Off-The-Shelf (COTS) solution by deploying the application with which of the following controls in ?
A. Whitelisting application
B. Network segmentation
C. Hardened configuration
D. Blacklisting application
Correct Answer: A
Question 13:
Which of the following is the best practice for testing a Business Continuity Plan (BCP)?
A. Test before the IT Audit
B. Test when environment changes
C. Test after installation of security patches
D. Test after implementation of system patches
Correct Answer: B
Question 14:
Security categorization of a new system takes place during which phase of the Systems Development Life Cycle (SDLC)?
A. System implementation
B. System initiation
C. System operations and maintenance
D. System acquisition and development
Correct Answer: D
Question 15:
Which of the following methods MOST efficiently manages user accounts when using a third-party cloud-based application and directory solution?
A. Cloud directory
B. Directory synchronization
C. Assurance framework
D. Lightweight Directory Access Protocol (LDAP)
Correct Answer: B